bf38a13e1ceed18036add56cb4b8fa26d87e5caeeb2348ff76a4cf9deb1b95ab | Triage

Sharing

General

Target

bf38a13e1ceed18036add56cb4b8fa26d87e5caeeb2348ff76a4cf9deb1b95abN
Size

96KB
Sample

240920-v72e9aydne
MD5

80cdc150ce1518aad051ddd79aa29b30
SHA1

82ef25e72d2df74b3fd72a9e8a0d793ecf3e87ee
SHA256

bf38a13e1ceed18036add56cb4b8fa26d87e5caeeb2348ff76a4cf9deb1b95ab
SHA512

4ec3057f12484920b6fba428fac1aec0631faab3bfc21cf58993665e0c29afb083669cfe3644e014ac26ee636d26a266ca2f8cc89a457d7e86a204abd29f65c2
SSDEEP

1536:FDrgKz98P7gcB9QlxZcPixBi4Y+1aZYHbXOM6bOLXi8PmCofGy:FDrgm4g3l0PixBE+17HbXDrLXfzoey

Score

10^/10

discovery persistence

Malware Config

Targets

- Target
  
  bf38a13e1ceed18036add56cb4b8fa26d87e5caeeb2348ff76a4cf9deb1b95abN
- Size
  
  96KB
- MD5
  
  80cdc150ce1518aad051ddd79aa29b30
- SHA1
  
  82ef25e72d2df74b3fd72a9e8a0d793ecf3e87ee
- SHA256
  
  bf38a13e1ceed18036add56cb4b8fa26d87e5caeeb2348ff76a4cf9deb1b95ab
- SHA512
  
  4ec3057f12484920b6fba428fac1aec0631faab3bfc21cf58993665e0c29afb083669cfe3644e014ac26ee636d26a266ca2f8cc89a457d7e86a204abd29f65c2
- SSDEEP
  
  1536:FDrgKz98P7gcB9QlxZcPixBi4Y+1aZYHbXOM6bOLXi8PmCofGy:FDrgm4g3l0PixBE+17HbXDrLXfzoey
Score

10^/10

discovery persistence
- Adds autorun key to be loaded by Explorer.exe on startup
  persistence
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence